a )gg@s<ddlmZmZmZeZdZdZdZddl Z ddl Z ddl Z ddl Z ddl Z ddlZddlZddlZddlZddlZddlZddlZddlmZmZddlmZddlmZd ZdZzddlZd ZWneye ZYn0Gd d d e!Z"Gd dde"Z#ddZ$ddZ%ddZ&ddZ'ddZ(e)dkr8e(dS))absolute_importdivisionprint_functiona --- module: wait_for short_description: Waits for a condition before continuing description: - You can wait for a set amount of time C(timeout), this is the default if nothing is specified or just C(timeout) is specified. This does not produce an error. - Waiting for a port to become available is useful for when services are not immediately available after their init scripts return which is true of certain Java application servers. - It is also useful when starting guests with the M(community.libvirt.virt) module and needing to pause until they are ready. - This module can also be used to wait for a regex match a string to be present in a file. - In Ansible 1.6 and later, this module can also be used to wait for a file to be available or absent on the filesystem. - In Ansible 1.8 and later, this module can also be used to wait for active connections to be closed before continuing, useful if a node is being rotated out of a load balancer pool. - For Windows targets, use the M(ansible.windows.win_wait_for) module instead. version_added: "0.7" options: host: description: - A resolvable hostname or IP address to wait for. type: str default: 127.0.0.1 timeout: description: - Maximum number of seconds to wait for, when used with another condition it will force an error. - When used without other conditions it is equivalent of just sleeping. type: int default: 300 connect_timeout: description: - Maximum number of seconds to wait for a connection to happen before closing and retrying. type: int default: 5 delay: description: - Number of seconds to wait before starting to poll. type: int default: 0 port: description: - Port number to poll. - C(path) and C(port) are mutually exclusive parameters. type: int active_connection_states: description: - The list of TCP connection states which are counted as active connections. type: list elements: str default: [ ESTABLISHED, FIN_WAIT1, FIN_WAIT2, SYN_RECV, SYN_SENT, TIME_WAIT ] version_added: "2.3" state: description: - Either C(present), C(started), or C(stopped), C(absent), or C(drained). - When checking a port C(started) will ensure the port is open, C(stopped) will check that it is closed, C(drained) will check for active connections. - When checking for a file or a search string C(present) or C(started) will ensure that the file or string is present before continuing, C(absent) will check that file is absent or removed. type: str choices: [ absent, drained, present, started, stopped ] default: started path: description: - Path to a file on the filesystem that must exist before continuing. - C(path) and C(port) are mutually exclusive parameters. type: path version_added: "1.4" search_regex: description: - Can be used to match a string in either a file or a socket connection. - Defaults to a multiline regex. type: str version_added: "1.4" exclude_hosts: description: - List of hosts or IPs to ignore when looking for active TCP connections for C(drained) state. type: list elements: str version_added: "1.8" sleep: description: - Number of seconds to sleep between checks. - Before Ansible 2.3 this was hardcoded to 1 second. type: int default: 1 version_added: "2.3" msg: description: - This overrides the normal error message from a failure to meet the required conditions. type: str version_added: "2.4" extends_documentation_fragment: action_common_attributes attributes: check_mode: support: full diff_mode: support: none platform: platforms: posix notes: - The ability to use search_regex with a port connection was added in Ansible 1.7. - Prior to Ansible 2.4, testing for the absence of a directory or UNIX socket did not work correctly. - Prior to Ansible 2.4, testing for the presence of a file did not work correctly if the remote user did not have read access to that file. - Under some circumstances when using mandatory access control, a path may always be treated as being absent even if it exists, but can't be modified or created by the remote user either. - When waiting for a path, symbolic links will be followed. Many other modules that manipulate files do not follow symbolic links, so operations on the path using other modules may not work exactly as expected. seealso: - module: ansible.builtin.wait_for_connection - module: ansible.windows.win_wait_for - module: community.windows.win_wait_for_process author: - Jeroen Hoekx (@jhoekx) - John Jarvis (@jarv) - Andrii Radyk (@AnderEnder) a_ - name: Sleep for 300 seconds and continue with play ansible.builtin.wait_for: timeout: 300 delegate_to: localhost - name: Wait for port 8000 to become open on the host, don't start checking for 10 seconds ansible.builtin.wait_for: port: 8000 delay: 10 - name: Waits for port 8000 of any IP to close active connections, don't start checking for 10 seconds ansible.builtin.wait_for: host: 0.0.0.0 port: 8000 delay: 10 state: drained - name: Wait for port 8000 of any IP to close active connections, ignoring connections for specified hosts ansible.builtin.wait_for: host: 0.0.0.0 port: 8000 state: drained exclude_hosts: 10.2.1.2,10.2.1.3 - name: Wait until the file /tmp/foo is present before continuing ansible.builtin.wait_for: path: /tmp/foo - name: Wait until the string "completed" is in the file /tmp/foo before continuing ansible.builtin.wait_for: path: /tmp/foo search_regex: completed - name: Wait until regex pattern matches in the file /tmp/foo and print the matched group ansible.builtin.wait_for: path: /tmp/foo search_regex: completed (?P\w+) register: waitfor - ansible.builtin.debug: msg: Completed {{ waitfor['match_groupdict']['task'] }} - name: Wait until the lock file is removed ansible.builtin.wait_for: path: /var/lock/file.lock state: absent - name: Wait until the process is finished and pid was destroyed ansible.builtin.wait_for: path: /proc/3466/status state: absent - name: Output customized message when failed ansible.builtin.wait_for: path: /tmp/foo state: present msg: Timeout to find file /tmp/foo # Do not assume the inventory_hostname is resolvable and delay 10 seconds at start - name: Wait 300 seconds for port 22 to become open and contain "OpenSSH" ansible.builtin.wait_for: port: 22 host: '{{ (ansible_ssh_host|default(ansible_host))|default(inventory_hostname) }}' search_regex: OpenSSH delay: 10 connection: local # Same as above but you normally have ansible_connection set in inventory, which overrides 'connection' - name: Wait 300 seconds for port 22 to become open and contain "OpenSSH" ansible.builtin.wait_for: port: 22 host: '{{ (ansible_ssh_host|default(ansible_host))|default(inventory_hostname) }}' search_regex: OpenSSH delay: 10 vars: ansible_connection: local at elapsed: description: The number of seconds that elapsed while waiting returned: always type: int sample: 23 match_groups: description: Tuple containing all the subgroups of the match as returned by U(https://docs.python.org/3/library/re.html#re.MatchObject.groups) returned: always type: list sample: ['match 1', 'match 2'] match_groupdict: description: Dictionary containing all the named subgroups of the match, keyed by the subgroup name, as returned by U(https://docs.python.org/3/library/re.html#re.MatchObject.groupdict) returned: always type: dict sample: { 'group': 'match' } N) AnsibleModulemissing_required_lib)get_platform_subclass)to_bytesFTcsZeZdZdZdZdZejdejdiZ dddZ fd d Z d d Z d dZ ddZZS)TCPConnectionInfoa This is a generic TCP Connection Info strategy class that relies on the psutil module, which is not ideal for targets, but necessary for cross platform support. A subclass may wish to override some or all of these methods. - _get_exclude_ips() - get_active_connections() All subclasses MUST define platform and distribution (which may be None). GenericNz0.0.0.0z::z::ffffz::ffff:0.0.0.0prefix match_allcstt}t|||S)N)rr super__new__)clsargskwargsZnew_cls __class__zGLinuxTCPConnectionInfo.get_active_connections_count..r/:r r r2) source_filekeysospathisfileopen readlinesstripsplitlocal_address_fieldconnection_state_fieldrrrremote_address_fieldr"r8rr9r:r;IOErrorclose) r'r<r7fZtcp_connectionr>r?r@rAerrrrBxs>    z3LinuxTCPConnectionInfo.get_active_connections_count)rCrDrErFrGrHrIrJrKrWr9r;r`rbrar(r!rBrrrrrMQs$rMc Csdt|dddtj}g}|D]B\}}}}}|d}|||f|tjkr|tjd|fq|S)z Perform forward DNS resolution on host, IP will give the same IP Args: host: String with either hostname, IPv4, or IPv6 address Returns: List of tuples containing address family and IP Prz::ffff:)rIZ getaddrinfoZSOL_TCPappendrJrK) rZaddrinforr7ZsocktypeprotoZ canonnameZsockaddriprrrrs  rc Csg}|durt|D]p\}}tt||}d}tdt|dD]2}|||d}tt|dd}d||f}qB| ||fq|S)as Convert the provided host to the format in /proc/net/tcp* /proc/net/tcp uses little-endian four byte hex for ipv4 /proc/net/tcp6 uses little-endian per 4B word for ipv6 Args: host: String with either hostname, IPv4, or IPv6 address Returns: List of tuples containing address family and the little-endian converted host Nr)basez%s%08X) rbinasciiZb2a_hexrIZ inet_ptonrangelenZntohlr rh) rrr7rjZhexip_nfZhexip_hfiZ ipgroup_nfZ ipgroup_hfrrrrPsrPcCs&|jd|j|jddddS)Ngii@B)Z microsecondssecondsZdays) timedeltarrr_timedelta_total_secondss rvcCsddddddd}||S)NZ01Z02Z03Z04Z05Z06) ESTABLISHEDSYN_SENTSYN_RECV FIN_WAIT1 FIN_WAIT2 TIME_WAITr)stateZconnection_state_idrrrrQsrQcCstttdddtdddtdddtdddtddtd dgd d td dtddtdd gddtd ddtdddtddd d}|jd}|jd}|jd}|jd}|jd}|jd}|jd }t|ddd}|jd} t| ddd} |jd} | durXzt| tj} Wn8tjyT} z|jd| d WYd} ~ n d} ~ 00nd} i}d!}|r~|r~|jd"dd#|r|d$kr|jd%dd#|r|d&kr|jd'dd#|jd(dur|d&kr|jd)dd#|jd*D]:}z t |Wn&t y"|jd+|dd#Yn0qt j }|rBt ||sf|sf|d&krft |nl|d,vr|t j|d-}t j |kr,|rzt|tjsWqWntyYqYn0nJ|rz(t||f|}|tj|Wnt yYqYn0t |jd.qt j |}|r`|j| pTd/||f|jd#n |r|j| pvd0||jd#nN|d1vrN|t j|d-}t j |kr|rzt|Wn`ty"} zF| jd2krt j |}|j| pd3|| jf|jd#WYd} ~ nd} ~ 00| s.qzt|d4}t t!j!|"dt!j#d5b}| $|}|r|%r||%}|&r|&}WdWdWqWdn1s0YWdn1s0YWntyYn0n|rt'(t)|t j }zt||ft*||}Wnt yVYn@0| r@d6}d7}t j |krt'(t)|t j }t++|ggg|d}|sqf|,d8}|sq||7}| $|rfd9}qqfz|tjWn8tjy*} z| jtj-krWYd} ~ nd} ~ 00||rqnVz|tjWn8tjy} z| jtj-krtWYd} ~ nd} ~ 00|qt |jd.qt j |}|r| r|j| pd:| ||f|jd#n|j| pd;||f|jd#nF|r| r2|j| p&d<| |f|jd#n|j| pBd=||jd#n|d&kr|t j|d-}t.|}t j |kr|/dkrqt |jd.qpt j |}|j| pd>||f|jd#t j |}|j0||| ||||jd?dS)@Nstrz 127.0.0.1)typedefaultr i,r)rlist)rwrzr{ryrxr|)relementsrrZstarted)absentdrainedpresentrstopped)rrchoices)rrr2) rtimeoutconnect_timeoutdelayrr/rZ search_regexr}r*sleepr)Z argument_specrrrrrr}Zsurrogate_or_strictZpassthru)errorsZ nonstringrrzInvalid regular expression: %s)rrz:port and path parameter can not both be passed to wait_for)relapsedrzLstate=stopped should only be used for checking a port in the wait_for modulerzLstate=drained should only be used for checking a port in the wait_for moduler*z/exclude_hosts should only be with state=drainedr/z,unknown active_connection_state (%s) defined)rr)rtrz'Timeout when waiting for %s:%s to stop.z)Timeout when waiting for %s to be absent.)rrrNzFailed to stat %s, %srb)accessrUFiTz2Timeout when waiting for search string %s in %s:%szTimeout when waiting for %s:%sz/Timeout when waiting for search string %s in %sz Timeout when waiting for file %sz'Timeout when waiting for %s:%s to drain)r}rr match_groupsmatch_groupdictrZr)1rdictrrrecompile MULTILINEerrorr$rQ ExceptiondatetimeZutcnowtimerrurYrF_OKrcrIZcreate_connectionZshutdownZ SHUT_RDWRrdrtstatOSErrorerrnostrerrorr\ contextlibclosingmmapfilenoZ ACCESS_READsearch groupdictgroupsmathZceilrvminselectZrecvZENOTCONNr rBZ exit_json)rrrrrrr}rZb_pathrZb_search_regexrZb_compiled_search_rerfrrrSstartendsrreZmmrZalt_connect_timeoutZb_dataZmatchedZ max_timeoutreadableZresponseZtcpconnsrrrmains<                (            6    b   "   r__main__)*Z __future__rrrrZ __metaclass__Z DOCUMENTATIONZEXAMPLESZRETURNrorrrrrrYrrrIr tracebackZansible.module_utils.basicrrZ$ansible.module_utils.common.sys_inforZansible.module_utils._textrr#r%r ImportError format_excobjectr rMrrPrvrQrrCrrrrsHtN   SJ U